Yahoo: One Billion More Accounts Hacked
2016-12-15
Just months after disclosing a breach that compromised the passwords for a half billion of its users, Yahoo now says a separate incident has jeopardized data from at least aRead More →
Hacked cheating site Ashley Madison will pay $1.6 million to FTC for breach
2016-12-15
Commission settlement officially $17.5 million, but fine reduced due to inability to pay. Ashley Madison, the dating website for married people seeking extramarital affairs, will pay the Federal Trade Commission (FTC)Read More →
Vulnerability in Joomla Allows Attackers to Reset Passwords and Take Over Sites
2016-12-14
The Joomla Project released version 3.6.5 of the Joomla CMS that addresses three security bugs, of which one can allow attackers to take over vulnerable sites. If this wasn’t badRead More →
Cerber Ransomware Spreads via Fake Credit Card Email Reports
2016-12-14
Just in time for the Christmas holiday shopping spree, the group behind the Cerber ransomware has launched a spam campaign that uses fake credit card reports to trick users intoRead More →
Affordable Android Phones Coming with Malware Injected in Stock Firmware
2016-12-14
Security firm warns of Trojans shipping with stock firmware. Russian security company Dr. Web, who also makes a PC antivirus solution bearing the same name, warns that it discovered a totalRead More →
Old Skype for Mac API Doubles as a Backdoor
2016-12-14
A soon-to-be-deprecated API included with Skype for Mac contains a vulnerability that allows an attacker to bypass authentication procedures and query for user data or interact with a local SkypeRead More →
The DNC keeps the Watergate file cabinet next to server hacked by Russia
2016-12-14
The basement of the Democratic National Committee’s Washington, DC, headquarters holds one of the most fitting images to come out of the hacks that dogged Democrats in the 2016 presidentialRead More →
Vulnerabilities Found in Linux Security Software Can Give Hackers Root Access
2016-12-13
McAfee patches flaws in its Linux security solution. Remote code execution flaws found in McAfee VirusScan Enterprise for Linux could allow an attacker to obtain root privileges, and a securityRead More →
The rise of TeleBots: Analyzing disruptive KillDisk attacks
2016-12-13
In the second half of 2016, ESET researchers identified a unique malicious toolset that was used in targeted cyberattacks against high-value targets in the Ukrainian financial sector. We believe that theRead More →
Loki Trojan Infects Android Libraries and System Process to Get Root Privileges
2016-12-13
Malware authors have released a new version of the Android Loki trojan, which can now infect native Android OS libraries after an earlier version had previously gained the capabilities toRead More →
Samas Ransomware Group Made at Least $450,000
2016-12-13
A criminal group has made at least $450,000 by infecting organizations with the Samas ransomware in the past year, according to an analysis by researchers from security firm Palo AltoRead More →
First Version of Sandboxed Tor Browser Available
2016-12-12
Developers at the Tor Project have started working on a sandboxed version of the Tor Browser, currently available as an early alpha version for Linux systems. Sandboxing is a securityRead More →
Zcash cryptocurrency, a new opportunity for cyber criminals
2016-12-12
On 28 October, the cryptocurrency world saw the emergence of a new player, the Zcash (ZEC) cryptocurrency. Its developers have described it rather figuratively: “If Bitcoin is like HTTP forRead More →
Critical flaw in PricewaterhouseCoopers SAP security tool, but PwC tries downplay it
2016-12-12
A PricewaterhouseCoopers SAP software, the Automated Controls Evaluator (ACE), is affected by a critical security flaw that could be exploited by hackers. A software developed by PricewaterhouseCoopers for SAP systems, the AutomatedRead More →
President Obama orders full review of alleged Russian hacking in US Election
2016-12-12
President Barack Obama has ordered US intelligence agencies to deeper investigate the alleged Russian interference with the 2016 Presidential Election. President Barack Obama is going to close his Presidential mandate,Read More →
Microsoft PowerShell Becomes a More Popular Malware-Spreading Tool
2016-12-12
Symantec warns of growing number of malicious scripts. Microsoft PowerShell is a really powerful tool for IT professionals running Windows, and the Redmond-based software giant is making it the defaultRead More →
Three serious Linux kernel security holes patched
2016-12-10
It’s time to patch your Linux servers and PCs again. The good news is developers are looking very closely at Linux’s core code for possible security holes. The bad newsRead More →
Lax Cybersecurity at Nuclear Facilities is a Recipe For Widespread Disaster
2016-12-10
Experts at the Nuclear Industry Summit (NIT) explained how to reduce the risk of damaging cyberattacks at nuclear facilities. The threat of cyber attacks on nuclear power plants and otherRead More →
CERT Warns Users to Stop Using Two Netgear Router Models Due to Security Flaw
2016-12-10
The United States Computer Emergency Readiness Team (US-CERT), an organization within the Department of Homeland Security (DHS), has published a security alert yesterday, warning owners of Netgear R6400 and R7000Read More →
No, there’s no evidence (yet) the feds tried to hack Georgia’s voter database
2016-12-10
State election official bungles the case that DHS tried to breach his office. Accusations that the US Department of Homeland security tried to hack Georgia’s voter registration database are runningRead More →
